Examice

Exam 156-585 All QuestionsBrowse all questions from this exam

Question 14

The two procedures available for debugging in the firewall kernel are: i. fw ctl zdebug ii. fw ctl debug/kdebug

Choose the correct statement explaining the difference in the two.

(i) Is used for general debugging, has a small buffer and is a quick way to set kernel debug flags to get an output via command line whereas (ii) is useful when there is a need for detailed debugging and requires additional steps to set the buffer and get an output via command line

(i) is used to debug the access control policy only, however (ii) can be used to debug a unified policy

(i) is used to debug only issues related to dropping traffic, however (ii) can be used for any firewall issue including NATing, clustering etc.

(i) is used on a Security Gateway, whereas (ii) is used on a Security Management Server

Correct Answer: A

The procedures fw ctl zdebug and fw ctl debug/kdebug serve different purposes in the context of debugging the firewall kernel. The option fw ctl zdebug is used for general debugging, features a small buffer, and provides a quick way to set kernel debug flags and get an output via the command line. On the other hand, fw ctl debug/kdebug is more suitable for detailed debugging, requiring additional steps to set up the buffer and obtain the output through the command line.

Discussion

henkpoaOption: A

According to the study material, this should be A: The Zdebug has a 1 MB buffer, cleans the buffer, enable flags and collects debug messages from the kernel for you. According to C, it is used for drop traffic, this is completely false You can set modules on it as well, such as CCP, cluster, fw, drop etc. Debug requires more configuration to be effective, but gives you more opportunities to play with, therefore, A is the correct answer.

SamoojOption: A

The Correct Answer is A

princessAliOption: A

A is correct

Slayer001Option: A

A is correct

castieltelOption: A

A is the answer